Tell me if you think this is a good idea.
I'm thinking about offering a free MX backup service that people without
backup servers can use. I'm thinking about doing this as a way of
promoting my spam filtering business because users will see a
significant reduction in spam and might want to upg
Hi Dirk,
I'm not getting any hits on the new version either.
Dirk Bonengel wrote:
Folks,
as some of you already noticed I f... up the last (1.5) release of the
iXhash plugin.
Plain simple a wrong regular expression practically disables hash #1.
I just uploaded a fixed version to ixhash.sf.n
I noticed this morning that I also had 0 ixhash hits. Is something wrong?
Rose, Bobby wrote:
Has anyone who switched to 1.5 of iXHash received any hits? I haven't seen any
since switching. One thing that I've noticed is if I pass the same message
thru SA using the old iXhash, the hash is com
Yes - you can use multiple SA servers talking to a common MySQL
database. I'm doing it with about 5 servers and it works. The answer to
question 2 is - YES.
I'm using Exim for an MTA and I use white lists and black lists to
prefilter spam. That greatly reduces the SA load.
Peter Fastré wrote
I noticed the size of my black list dropped by more that 1/3 this last week.
Henrik K wrote:
On Sun, Nov 16, 2008 at 03:29:07PM -0500, Micah Anderson wrote:
Over at another post about Phishing[0], Brent suggested setting up
hostkarma.junkemailfilter to my RBL list, which I have done... However
it seems to hit a lot of spams giving them a -5 scoring. I've either got
Here's a bigger white list:
http://wiki.junkemailfilter.com/index.php/Spam_DNS_Lists
Rasmus Haslund wrote:
Hi
guys,
Anyone
who wants to share what publicly available whitelist(s) they are using?
I
am only using dnswl.org currently.
Rasmus Haslund
NOWACO A/S
Jan Doberstein wrote:
Wolfgang Zeikat schrieb:
Do others also see that effect with ctyme.ixhash.net?
yes, thats why i added
ixhash_timeout 10
to my configuration (maybe hardware/bandwith on ctyme will be upgraded)
regards
jd
For what it's worth I'm the one who is providing
Blaine Fleming wrote:
John Hardin wrote:
Why is it so flippin' difficult to get a feed of newly-registered
domain names?
Because the TLDs hate giving people access to the data and certainly
won't provide a feed without a bunch of cash involved. Even worse,
all the ccTLDs pretty much refus
McDonald, Dan wrote:
On Mon, 2008-09-22 at 15:44 -0700, Marc Perkel wrote:
Ken A wrote:
Marc Perkel wrote:
I don't know how this will work but I'm building the data now. For
those of you who are familiar with Day old bread lists to detect new
domains, as you know
McDonald, Dan wrote:
Henrik K wrote:
On Mon, Sep 22, 2008 at 09:23:45AM -0500, Daniel J McDonald wrote:
On Mon, 2008-09-22 at 10:14 -0400, Justin Piszcz wrote:
On Mon, 22 Sep 2008, Daniel J McDonald wrote:
On Sun, 2008-09-21 at 18:18 -0500, Len Conrad wrote:
Ken A wrote:
Marc Perkel wrote:
I don't know how this will work but I'm building the data now. For
those of you who are familiar with Day old bread lists to detect new
domains, as you know there's a lag time in the data and they often
don't have data from all the regis
I don't know how this will work but I'm building the data now. For those
of you who are familiar with Day old bread lists to detect new domains,
as you know there's a lag time in the data and they often don't have
data from all the registries. So - here's a different solution.
What I'm thinkin
I've been working with Blaine Flemming and he's compiling his own DOB
data and I'm publishing it for him. I'm throwing it out there to see if
any of you find it as useful as I am finding it. The list can be
accessed as follows:
hostkarma.junkemailfilter.com = 127.0.0.6
What I'm catching is UR
Looking from opinions from people running rbl blacklists.
I have a list that contains a lot of name based information. I'm about
to add a lot more information to the list and what will happen is that
when you look up a name you might get several results. For example, a
hostname might be blackl
Blaine Fleming wrote:
Marc Perkel wrote:
Blaine Fleming wrote:
Marc Perkel wrote:
I just discovered the "Day old Bread" list of host names under 5
days old. I don't know where they get it but the list is very useful.
I remember playing with this list a few years ago bu
Blaine Fleming wrote:
Marc Perkel wrote:
I just discovered the "Day old Bread" list of host names under 5 days
old. I don't know where they get it but the list is very useful.
I remember playing with this list a few years ago but now they seem to
lag a few days behind. For
Great minds think alike. :)
What I'm doing is a modification of this. I'm using the Day old Bread
list but only adding IF they also skip the QUIT to close the connection
AND I'm subtracting out my white list.
Curtis LaMasters wrote:
This is quite an interesting trick. Never actually thought
I just discovered the "Day old Bread" list of host names under 5 days
old. I don't know where they get it but the list is very useful.
As many of you know I also track hosts that don't use the QUIT command
to close connections. So it occurred to me that if a domain is less than
5 days old AND
For those of you who want to experiment I've created a new dnsrbl list
of IP addresses and host names that use QUIT to close connections and
those who do not use QUIT. I have found that there are a few legitimate
senders who are skipping using QUIT to close.
Here's the rules. I have about 5 da
Aaron Wolfe wrote:
On Sun, Aug 31, 2008 at 10:59 PM, RobertH <[EMAIL PROTECTED]> wrote:
It was explained somewhere earlier in the thread that he sometimes has
to reboot his central dns servers and he apparently doesn't run local
caching servers on the individual MX/SA nodes.
I have to sa
Well, the code works for me. If someone has a better solution I'll
switch to yours. I just created it because I needed it and thought I'd
share it with others who might need it. But if any of you want to
improve it or replace it with something better I'm always looking for
new tricks.
Ralf Hildebrandt wrote:
* Matus UHLAR - fantomas <[EMAIL PROTECTED]>:
I guess that setting timeout, rotate and attempts options in resolv.conf
could help you more than such script
Nice tip, but there's no option that will "back off" from a dead DNS.
Of course timeout/attempts and ro
Matus UHLAR - fantomas wrote:
We have 4 DNS servers behind L3 switch
that monitors DNS servers...
This script is a poor man's L3 switch. :)
Matus UHLAR - fantomas wrote:
On 28.08.08 08:41, Marc Perkel wrote:
Here's something I threw together to make sure the /etc/resolv.conf
points to a working nameserver.
do you have problems with nameservers? Do you run own one?
I guess that setting timeout, rotate and att
Marc Perkel wrote:
Here's something I threw together to make sure the /etc/resolv.conf
points to a working nameserver. I run this once a minute. It checks to
see what name servers are up and creates /etc/resolv.conf. As you all
know SA and mail servers need the first nameserver to alwa
Here's something I threw together to make sure the /etc/resolv.conf
points to a working nameserver. I run this once a minute. It checks to
see what name servers are up and creates /etc/resolv.conf. As you all
know SA and mail servers need the first nameserver to always be working.
#!/bin/bash
Aaron Wolfe wrote:
On Tue, Aug 26, 2008 at 12:26 PM, Marc Perkel <[EMAIL PROTECTED]> wrote:
You continue to miss the point, or maybe you just don't want to understand it.
Sending my client's email to your servers is irresponsible at best and
possibly even a violatio
Ken A wrote:
Ralf Hildebrandt wrote:
* Ken A <[EMAIL PROTECTED]>:
How? He tempfails all mails.
Are you asking how sending your customer, or company email off
someplace you don't control might be a security risk?
It's in no way more dangerous than using Postini...
Have you compared Pos
Ken A wrote:
Ralf Hildebrandt wrote:
* Robert Schetterer <[EMAIL PROTECTED]>:
Project Tarbaby helps you reduce spam and helps us build our
blacklist. This is done by adding a fake MX record to your existing
MX lists
thats could be seen as a security risk
cause in rare cases you may recie
Graham Murray wrote:
Ralf Hildebrandt <[EMAIL PROTECTED]> writes:
* Robert Schetterer <[EMAIL PROTECTED]>:
thats could be seen as a security risk
cause in rare cases you may recieve legal mails
i.e at an network outage etc
How? He tempfails all mails.
Because some send
Robert Schetterer wrote:
Marc Perkel schrieb:
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return
a 451 error but we h
Getting a lot of these:
spamd: bad protocol: header error: (closed before headers) at
/usr/bin/spamd line 2001.
Not sure what this means. Thanks in advance for your help.
Jean-Paul Natola wrote:
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return a
451 error but we have a very good way of detectin
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return a
451 error but we have a very good way of detecting virus infected spam
bots
Whoops - Here's the real link.
http://wiki.junkemailfilter.com/index.php/Project_tarbaby
Marc Perkel wrote:
We are harvesting data for our blacklists. Do you have an old dead
domain that gets a lot of spam? We could use it. Just point your MX
record to us.
tarbaby.junkemailfilte
We are harvesting data for our blacklists. Do you have an old dead
domain that gets a lot of spam? We could use it. Just point your MX
record to us.
tarbaby.junkemailfilter.com
Here's the details of what we are doing with it. It also covers using us
as your fake highest MX record.
http://wi
Hi everyone,
I'm launching a free spam reduction service to help build up my
blacklists. It involves adding a fake high numbered MX record to your
existing MX list that points to one of our servers. We always return a
451 error but we have a very good way of detecting virus infected spam
bots
I'm referring to the Hostkarma list from junk email filter.
http://wiki.junkemailfilter.com/index.php/Spam_DNS_Lists
What is the procedure/requirements to make this happen? I have 4 servers
running rbldnsd.
Questions
What kind of license do I need to provide to be SA compatible?
What wo
ld be.
Jonas Eckerman wrote:
Marc Perkel wrote:
I don't care what it's written in but I'm thinking that xinetd might
be easiest. What I want is something to record the IP address of any
host connection to port 25.
You don't really need to accept the connection. Just logg
Ramprasad wrote:
Marc Perkel wrote:
There's people out there who are better and faster programmers than I
am. I need a simple utility written We can post it on the SA Wiki
when we're done.
I don't care what it's written in but I'm thinking that xinetd might
b
There's people out there who are better and faster programmers than I
am. I need a simple utility written We can post it on the SA Wiki when
we're done.
I don't care what it's written in but I'm thinking that xinetd might be
easiest. What I want is something to record the IP address of any hos
Christopher Bort wrote:
This is really not a SpamAssassin issue, but since this list is
populated by people who are interested in spammer behavior, I'm
throwing it out for comment. If it's too far off topic, my apologies
and I'll let it go at that.
At $DAYJOB I run a mail server and a name
Just a quick sendmail question I'm asking for a friend. If they want to
make sendmail listen on port 2525 instead of 25 - what do they meed to
change? Email me privately off list.
Thanks in advance
Matthias Leisi wrote:
Marc Perkel schrieb:
Has anyone determined if ASN information is useful in determining if
a message is/is not spam?
Unfortunately, it does not seem to be *that* useful:
http://matthias.leisi.net/archives/176-Where-does-your-spam-come-from.html
-- Matthias
Is
Has anyone determined if ASN information is useful in determining if a
message is/is not spam?
May I suggest that the test for reply_to and email addresses in the body
of the email be separate routins and separate rules and separate scores.
Also perhaps there should be a rule to see if the from is freemail but
no freemail in received headers. For example, from is yahoo.com but no
yahoo h
Yet Another Ninja wrote:
On 7/2/2008 6:05 PM, Marc Perkel wrote:
Is there an easy way to detect the registrar of a domain through DNS?
For example - can I easilly figure out if an email I'm processing is
hosted by GoDaddy or Tucows?
Here's what I'm thinking. I think there
Richard Frovarp wrote:
Marc Perkel wrote:
Michele Neylon wrote:
On 2 Jul 2008, at 19:56, Marc Perkel wrote:
Again - it's not to figure out where spam comes from. It's figuring
out where non-spam comes from. I think there are registrars out
there that don't have a
Michele Neylon wrote:
On 2 Jul 2008, at 19:56, Marc Perkel wrote:
Again - it's not to figure out where spam comes from. It's figuring
out where non-spam comes from. I think there are registrars out there
that don't have any spam domains registered.
What are you
Matus UHLAR - fantomas wrote:
On 03.07.08 13:22, Henrik K wrote:
If lesser registrar means that it's probably ham, why couldn't someone use
that to add some negative scores or use it as a part of whitelist
trustworthiness? Even if it's handful of domains, it's useful. If you could
get the r
Henrik K wrote:
On Thu, Jul 03, 2008 at 10:48:07AM +0200, Matus UHLAR - fantomas wrote:
On 03.07.08 11:35, Henrik K wrote:
I'd like to encourage people to take more advantage of DNSWL.
I'm currently converting DNSWL entries into trusted_networks and using
shortcircuited ALL_TR
Martin Gregorie wrote:
On Wed, 2008-07-02 at 18:46, Marc Perkel wrote:
Martin Gregorie wrote:
On Wed, 2008-07-02 at 17:05, Marc Perkel wrote:
Is there an easy way to detect the registrar of a domain through DNS?
For example - can I easilly figure out if an email I
Martin Gregorie wrote:
On Wed, 2008-07-02 at 17:05, Marc Perkel wrote:
Is there an easy way to detect the registrar of a domain through DNS?
For example - can I easilly figure out if an email I'm processing is
hosted by GoDaddy or Tucows?
Even if it was possible I don't
John Hardin wrote:
On Wed, 2 Jul 2008, Marc Perkel wrote:
Is there an easy way to detect the registrar of a domain through DNS?
For example - can I easilly figure out if an email I'm processing is
hosted by GoDaddy or Tucows?
Registrar != hosted by.
Here's what I'm th
Is there an easy way to detect the registrar of a domain through DNS?
For example - can I easilly figure out if an email I'm processing is
hosted by GoDaddy or Tucows?
Here's what I'm thinking. I think there's some expensive and highly
secure registrars out there who are the registrar of expen
Henrik K wrote:
On Sun, Jun 29, 2008 at 11:37:13PM -0700, Marc Perkel wrote:
I'd like to suggest an additional feature for the freemail plugin. If
you test the sending host through FCrDNS and determine that the sending
host is a freemail hostname (like google.com) then you s
I'd like to suggest an additional feature for the freemail plugin. If
you test the sending host through FCrDNS and determine that the sending
host is a freemail hostname (like google.com) then you should consider
it a freemail sender. Thus if the sending host is Google, but the
reply-to or an e
Daniel J McDonald wrote:
On Tue, 2008-06-24 at 10:19 -0400, Randy Ramsdell wrote:
ram wrote:
I am seeing a clear downtrend in the number for spams hitting our
servers, I am not sure why ? Since Last week spams are at 50% of what
they used to be last month. Is this what you all are see
Marc Ferguson wrote:
Hi,
I'm a linux noob and a spam assassin noob so please reply in
simplified language. Thanks.
I saw on the wiki a trick to use fake mx records in order to weed out
spam (http://wiki.apache.org/spamassassin/OtherTricks). I'm using
Evolution at home and on my laptop and
What would cause this?
Jun 10 11:21:29 spamd0 spamd[20360]: Odd number of elements in hash
assignment at
/usr/lib/perl5/vendor_perl/5.8.8/Mail/SpamAssassin/BayesStore.pm line 322.
Jun 10 11:21:29 spamd0 spamd[20360]: Use of uninitialized value in list
assignment at
/usr/lib/perl5/vendor_perl/
Actually - I just need your spam attempts. I have a way to detect
spambots on the first try and add them to my blacklist at
hostkarma.junkemailfilter.com
Sp - if you want to participate and lose a chunk of your virus spambot
spam all you have to do is add us as your highest numbered MX record.
Randal, Phil wrote:
We should be marking ALL such behaviour as phishing and hope that the
banks (etc) finally get a clue.
I certainly wouldn't trust my money with an outfit that was that
clueless about security.
Cheers,
Phil
Actually in some ways this leads to an interesting idea. In
Patrick McLean wrote:
royalbankofcanada.com
This is the wrong URL for the Royal Bank, it appears to be a domain
camping site. Generally RBC's emails come from rbc.com, they also own
royalbank.com, royalbank.ca, rbcroyalbank.ca and rbcroyalbank.com.
Also you can add:
desjardins.com
I get
Here's a short list of banks often spoofed in phishing scams. I'm using
this list as follows:
If the FCrDNS matches one of these domains it is ham.
If the sender or from address matches one of these domains and the
domain doesn't appear in the Received headers - it's a phish.
If anyone has an
Robert - elists wrote:
Since they seem to have zillions of outbound mx machines
I did this in response to some email latency issues.
dig google.com txt
google.com. 31 IN TXT "v=spf1
include:_netblocks.google.com ~all"
then i
dig _netblocks.google.com txt
_netbloc
Henrik K wrote:
On Mon, Jun 02, 2008 at 08:09:40AM -0700, Marc Perkel wrote:
In the freemail plugin rather that listing all the domains in the plugin
I propose a network of DNS servers that list the names using rbldnsd. We
also have a central location where we maintain the list. That
In the freemail plugin rather that listing all the domains in the plugin
I propose a network of DNS servers that list the names using rbldnsd. We
also have a central location where we maintain the list. That way the
list can be updated faster and people have current information. I
suggest someo
Henrik K wrote:
On Thu, May 29, 2008 at 11:25:19AM -0700, Marc Perkel wrote:
I've also created a DNS based list of domains that provide consumer
dynamic IP address space. I'm using this list internally but thought I'd
make it public in case others can use it.
Tr
Matus UHLAR - fantomas wrote:
Marc Perkel wrote:
I've also created a DNS based list of domains that provide consumer
dynamic IP address space. I'm using this list internally but thought
I'd make it public in case others can use it.
Trying to inspire innovation.
Ken A wrote:
Marc Perkel wrote:
I've also created a DNS based list of domains that provide consumer
dynamic IP address space. I'm using this list internally but thought
I'd make it public in case others can use it.
Trying to inspire innovation.
I've also created a DNS based list of domains that provide consumer
dynamic IP address space. I'm using this list internally but thought I'd
make it public in case others can use it.
Trying to inspire innovation.
Example:
dig comcast.com.isphosts.junkemailfilter.com
This list was created by
I now have a name based DNS lookup for freemail domains. If anyone finds
this useful let me know.
example:
dig yahoo.com.freemaildomains.junkemailfilter.com
I started collecting host names where the registry barrier part of the
FCrDNS is the same as the registry barrier part of the helo. I don't
know what it's good for - if anything - but looking for ideas as to what
to do with it. Just have a gut level feeling that I'm on to something here.
Jo Rhett wrote:
On May 7, 2008, at 9:17 AM, mouss wrote:
what if he comes back later to the same MX, again and again (AFAIK,
this is the case with qmail)? mail will be lost.
Good. Time for qmail to die ;-)
Agreed. Qmail should die!
mouss wrote:
Jo Rhett wrote:
On May 7, 2008, at 9:17 AM, mouss wrote:
what if he comes back later to the same MX, again and again (AFAIK,
this is the case with qmail)? mail will be lost.
Good. Time for qmail to die ;-)
start by updating the RFCs.
Qmail only has a problem with lowe
... continued
As I said in my last mesage. The High MX no quit spambot detectors will
send UDP messages to a receiving server that listens for these messages
and processes them into blacklists.
What I'm doing is just using SOCAT to listen. But doing it right you
might want to use a real data
continuing
This project is targeted mostly at harvesting the IP addresses of virus
infected spambots. First - some background.
I virus infected spambot sends email differently than SMTP servers and
there is enough difference that they can usually be detected on the
first attempt to send
Hi everyone, I'm back from vacation and want to pick up where I left
off. I had offered to let anyone use one of my hosts.
tarbaby.junkemailfilter.com
as your highest numbered MX. The idea being that I would always return a
451 error. You would gain some spam reduction and I would gain blackli
Just looking for some my.cnf example files for SA.
Server has 4 gigs of ram, dual core CPU. What do I want in my my.cnf file?
Thanks in advance.
SM wrote:
At 06:30 16-05-2008, Marc Perkel wrote:
I'm running several servers that are using a common MySQL server for
bayes for all the SA servers. What I'm seeing is that MySQL is just
plain unreliable. The database is often corrupted and it does so in a
manner that basically ca
Need a little help for MySQL users.
I'm running several servers that are using a common MySQL server for
bayes for all the SA servers. What I'm seeing is that MySQL is just
plain unreliable. The database is often corrupted and it does so in a
manner that basically causes SA to hang until it ti
Kevin Parris wrote:
Well now, if a spambot actually does start recognizing and avoiding his system,
doesn't that mean he wins and the spammer loses?
I would say YES!
You should make an effort to clean it up so that others *can* install it as a
standalone daemon, as I suggested. Why? H
John Hardin wrote:
On Thu, 8 May 2008, Marc Perkel wrote:
To participate all you have to do is set your highest numbered MX to
point to:
tarbaby.junkemailfilter.com
Several people have asked me how I'm doing this and can they have my
code to do it themselves. My situation is u
ram wrote:
IOn Wed, 2008-05-07 at 08:50 -0700, Marc Perkel wrote:
Looking for a few volunteers who want to reduce their spambot spam and
at the same time help me track spambots for my black list. This is free
and mutual benefit. I (junkemailfilter.com) want to be your highest
numbered
Randy Ramsdell wrote:
DAve wrote:
Marc Perkel wrote:
Looking for a few volunteers who want to reduce their spambot spam
and at the same time help me track spambots for my black list. This
is free and mutual benefit. I (junkemailfilter.com) want to be your
highest numbered fake MX record
Looking for a few volunteers who want to reduce their spambot spam and
at the same time help me track spambots for my black list. This is free
and mutual benefit. I (junkemailfilter.com) want to be your highest
numbered fake MX record. Here's how you would configure your domain:
mail.yourdomai
Trying to do something that should be simple. Using sed to remove the
first part of a hostname but not working. I want:
abc.def.com to become def.com
I tried a lot of variations of the following but it's either greedy or
does nothing.
sed -e 's/^.*?[.]//'
Thanks in advance.
I was just wondering from those of you who have done it - how to start a
URIBL. I'm guessing the process (simplified) is:
1) Mine messages for links
2) Subtract out anything matching a fairly large white list
So my first question here is - what do most of you used to mine the
links in a messag
Robert - elists wrote:
Snip
If anyone has tested HostKarma already... and found it promising, but a
little lacking... I suggest testing it again. It is even better now.
In fact, most DNSBLs do not suddenly come on the scene "perfect". Most
have had MUCH growing pains. Therefore, a
Chris Santerre wrote:
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> Sent: 2008-04-23 10:48
> To: Marc Perkel
> Cc: users@spamassassin.apache.org
> Subject: Re: Looking for hosts to white list
>
>
>
> Marc Perkel writes
Jon Armitage wrote:
Justin Mason wrote:
sorry Marc, you weren't the first to come up with that idea.
He didn't say that he was, just that he was the first to raise it on
the list.
Jon
It may have been 2001. But at the time I remember saying that all spam
wants you to do something an
Henrik K wrote:
On Tue, Apr 22, 2008 at 07:50:33PM -0700, Marc Perkel wrote:
What I'm looking to do with host name base white lists is use forward
confirmed RDNS to keep certian domain from being accidentally blacklisted.
What's funny is that you already mentioned this
there's really nothing stopping spammers from putting in amazon.com,
google.com, yahoo.com, etc. and they can be pretty sure these domains
are whitelisted already by the uribl organizations.
On Wed, Apr 23, 2008 at 01:51:10AM +0200, Benny Pedersen wrote:
On Tue, April 22, 2008 23:47, Marc P
Benny Pedersen wrote:
On Tue, April 22, 2008 23:47, Marc Perkel wrote:
I'm looking for people who are running URI blacklists, but I'm more
interested in your whitelist information. I have an extensive list
myself and looking for partners to swap data with.
hell no, dont g
I'm looking for people who are running URI blacklists, but I'm more
interested in your whitelist information. I have an extensive list
myself and looking for partners to swap data with.
I've created a public no blacklist DNS list of host names and IP
addresses that should never be blacklisted. Some of them are from my
white list, some from my yellow list, and others are just names and IPs
that you don't want to be on a blacklist. Here's the link that describes
how to use it.
Theo Van Dinter wrote:
I'm not saying anything positive or negative about the different lists,
but there's a long precedent of doing this type of thing w/ bits in a
standard DNS response. Look at SURBL and URIBL, for example -- a single
response encodes multiple individual list entries, and th
I'm considering a DNS list that would return strings as TXT records that
contain key words that classify the Forward Confirmed rDNS name based on
a number of flags. For example, if the host is yahoo.com it might
contain "yellow freemail" indicating that it is yellow listed (mixed
ham/spam) and
Henrik K wrote:
Hello,
I updated my FreeMail plugin with a big list of domains
(http://www.rhyolite.com/anti-spam/freemail.html).
Try it out:
http://sa.hege.li/FreeMail.pm
http://sa.hege.li/FreeMail.cf
Pretty good hit ratio here, especially when you add some extra scores like
FREEMAIL_FROM
501 - 600 of 1072 matches
Mail list logo